Claude HUD through 0.0.12, patched in commit 234d9aa, contains a path traversal vulnerability that allows attackers to read arbitrary files by supplying an unvalidated transcript_path value via stdin JSON. Attackers can access any file readable by the process and the file metadata is written to a persistent cache file with insufficient permissions, creating a forensic record of accessed paths that survives process exit.
References
| Link | Resource |
|---|---|
| https://github.com/jarrodwatts/claude-hud/commit/234d9aad919b51326a43bcf90b45ae35c23afc30 | Patch |
| https://github.com/jarrodwatts/claude-hud/issues/485 | Issue Tracking |
| https://github.com/jarrodwatts/claude-hud/pull/487 | Issue Tracking Patch |
| https://www.vulncheck.com/advisories/claude-hud-path-traversal-via-transcript-path | Third Party Advisory |
Configurations
History
02 Jun 2026, 19:09
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Jarrodwatts claude Hud
Jarrodwatts |
|
| CPE | cpe:2.3:a:jarrodwatts:claude_hud:*:*:*:*:*:claude_code:*:* | |
| References | () https://github.com/jarrodwatts/claude-hud/commit/234d9aad919b51326a43bcf90b45ae35c23afc30 - Patch | |
| References | () https://github.com/jarrodwatts/claude-hud/issues/485 - Issue Tracking | |
| References | () https://github.com/jarrodwatts/claude-hud/pull/487 - Issue Tracking, Patch | |
| References | () https://www.vulncheck.com/advisories/claude-hud-path-traversal-via-transcript-path - Third Party Advisory |
18 May 2026, 20:19
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-05-18 20:16
Updated : 2026-06-02 19:09
NVD link : CVE-2026-47091
Mitre link : CVE-2026-47091
CVE.ORG link : CVE-2026-47091
JSON object : View
Products Affected
jarrodwatts
- claude_hud
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')